feat: Enable DynamoDB encryption #84

Workflow file for this run

.github/workflows/pre-commit.yml at 8007c40

	name: Pre-Commit

	on:
	pull_request:
	branches:
	- main

	env:
	TERRAFORM_DOCS_VERSION: v0.18.0
	TFLINT_VERSION: v0.52.0

	permissions:
	actions: none
	attestations: none
	checks: none
	contents: read
	deployments: none
	id-token: none
	issues: none
	discussions: none
	packages: none
	pages: none
	pull-requests: none
	repository-projects: none
	security-events: none
	statuses: none

	jobs:
	# currently there are defined only some selected scanners:
	# https://github.com/sebastianczech/terraform-aws-free-serverless-modules/settings/variables/actions
	# to see all possible scanners, please visit:
	# https://github.com/super-linter/super-linter
	superLinter:
	name: Lint
	runs-on: ubuntu-latest

	permissions:
	contents: read
	packages: read
	statuses: write

	steps:
	- name: Checkout code
	uses: actions/checkout@v4
	with:
	fetch-depth: 0

	- name: Super-linter
	uses: super-linter/[email protected]
	env:
	VALIDATE_CHECKOV: ${{ vars.VALIDATE_CHECKOV }}
	VALIDATE_GITLEAKS: ${{ vars.VALIDATE_GITLEAKS }}
	VALIDATE_YAML: ${{ vars.VALIDATE_YAML }}
	GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}

	collectInputs:
	name: Collect workflow inputs
	runs-on: ubuntu-latest
	outputs:
	directories: ${{ steps.dirs.outputs.directories }}
	steps:
	- name: Checkout
	uses: actions/checkout@v4

	- name: Get root directories
	id: dirs
	uses: clowdhaus/terraform-composite-actions/[email protected]

	preCommitMinVersions:
	name: Min TF pre-commit
	needs: collectInputs
	runs-on: ubuntu-latest
	strategy:
	matrix:
	directory: ${{ fromJson(needs.collectInputs.outputs.directories) }}
	steps:
	- name: Checkout
	uses: actions/checkout@v4

	- name: Install Trivy
	run: \|
	sudo apt-get install wget apt-transport-https gnupg lsb-release
	wget -qO - https://aquasecurity.github.io/trivy-repo/deb/public.key \| sudo apt-key add -
	echo deb https://aquasecurity.github.io/trivy-repo/deb $(lsb_release -sc) main \| sudo tee -a /etc/apt/sources.list.d/trivy.list
	sudo apt-get update
	sudo apt-get install trivy

	- name: Terraform min/max versions
	id: minMax
	uses: clowdhaus/[email protected]
	with:
	directory: ${{ matrix.directory }}

	- name: Pre-commit Terraform ${{ steps.minMax.outputs.minVersion }}
	uses: clowdhaus/terraform-composite-actions/[email protected]
	with:
	terraform-version: ${{ steps.minMax.outputs.minVersion }}
	tflint-version: ${{ env.TFLINT_VERSION }}
	terraform-docs-version: ${{ env.TERRAFORM_DOCS_VERSION }}

	preCommitMaxVersion:
	name: Max TF pre-commit
	runs-on: ubuntu-latest
	needs: collectInputs
	steps:
	- name: Checkout
	uses: actions/checkout@v4
	with:
	ref: ${{ github.event.pull_request.head.ref }}
	repository: ${{github.event.pull_request.head.repo.full_name}}

	- name: Install Trivy
	run: \|
	sudo apt-get install wget apt-transport-https gnupg lsb-release
	wget -qO - https://aquasecurity.github.io/trivy-repo/deb/public.key \| sudo apt-key add -
	echo deb https://aquasecurity.github.io/trivy-repo/deb $(lsb_release -sc) main \| sudo tee -a /etc/apt/sources.list.d/trivy.list
	sudo apt-get update
	sudo apt-get install trivy

	- name: Terraform min/max versions
	id: minMax
	uses: clowdhaus/[email protected]

	- name: Pre-commit Terraform ${{ steps.minMax.outputs.maxVersion }}
	uses: clowdhaus/terraform-composite-actions/[email protected]
	with:
	terraform-version: ${{ steps.minMax.outputs.maxVersion }}
	tflint-version: ${{ env.TFLINT_VERSION }}
	terraform-docs-version: ${{ env.TERRAFORM_DOCS_VERSION }}

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

feat: Enable DynamoDB encryption #84

Workflow file

feat: Enable DynamoDB encryption #84

Jobs

Run details

Workflow file for this run